CVE-2014-3914 : Directory traversal vulnerability in the Admin Center for Tivoli Storage Manager

Directory traversal vulnerability in the Admin Center for Tivoli Storage Manager (TSM) in Rocket ServerGraph 1.2 allows remote attackers to (1) create arbitrary files via a .. (dot dot) in the query parameter in a writeDataFile action to the fileRequestor servlet, execute arbitrary files via a .. (dot dot) in the query parameter in a (2) run or (3) runClear action to the fileRequestor servlet, (4) read arbitrary files via a readDataFile action to the fileRequestor servlet, (5) execute arbitrary code via a save_server_groups action to the userRequest servlet, or (6) delete arbitrary files via a del action in the fileRequestServlet servlet.

Published 2014-08-07 11:13:36

Updated 2025-04-12 10:46:41

Source MITRE

View at NVD, CVE.org

Vulnerability category: Directory traversalExecute code

Products affected by CVE-2014-3914

Rocketsoftware » Rocket Servergraph » Version: 1.2
cpe:2.3:a:rocketsoftware:rocket_servergraph:1.2:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2014-3914

EPSS FAQ

79.64%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 99 %

Percentile, the proportion of vulnerabilities that are scored at or less

Metasploit modules for CVE-2014-3914

Rocket Servergraph Admin Center fileRequestor Remote Code Execution

Disclosure Date: 2013-10-30

First seen: 2020-04-26

exploit/multi/http/rocket_servergraph_file_requestor_rce

This module abuses several directory traversal flaws in Rocket Servergraph Admin Center for Tivoli Storage Manager. The issues exist in the fileRequestor servlet, allowing a remote attacker to write arbitrary files and execute commands with administrative privileges.

More information

CVSS scores for CVE-2014-3914

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
10.0	HIGH	AV:N/AC:L/Au:N/C:C/I:C/A:C	10.0	10.0	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete

CWE ids for CVE-2014-3914

CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2014-3914

http://zerodayinitiative.com/advisories/ZDI-14-161/

ZDI-14-161 | Zero Day Initiative
http://zerodayinitiative.com/advisories/ZDI-14-166/

ZDI-14-166 | Zero Day Initiative
http://zerodayinitiative.com/advisories/ZDI-14-163/

ZDI-14-163 | Zero Day Initiative
http://www.exploit-db.com/exploits/33807

Rocket Servergraph Admin Center - fileRequestor Remote Code Execution (Metasploit) - Multiple remote Exploit
Exploit
http://zerodayinitiative.com/advisories/ZDI-14-162/

ZDI-14-162 | Zero Day Initiative
http://zerodayinitiative.com/advisories/ZDI-14-165/

ZDI-14-165 | Zero Day Initiative

Jump to